CVE-2025-30048

The "serverConfig" endpoint, which returns the module configuration including credentials, is accessible without authentication.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
UNKNOWN
---
CERT-PLCNA
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 13%
Common Weakness Enumeration
References
https://cert.pl/en/posts/2025/08/CVE-2025-2313/